asyncrat

General

Target

769415a5529bd3a6d5e34205b4d52f53_JaffaCakes118
Size

45KB
Sample

240730-slb75awckl
MD5

769415a5529bd3a6d5e34205b4d52f53
SHA1

8611bb29c54a62be2b80ea88eb0213ebe22b3e23
SHA256

1f48d54ad69726c01a7ae1e7ceff7ae6093005be1e100a75968476d72d75cf06
SHA512

728d6507352c49bfc3e2d56db848aef6dfb006b78eb6326eb484e2c9d8c1d9b828c8e0a5de6e8144e0aa0419014fa0d130fb7b3aecb5be6f1fae97e8a2b5405f
SSDEEP

768:Pu/CZTgoiziWUUM9rmo2qrE/rs4JZOPIc4zjb7gXOiVNtrZ8KK4tBDZrx:Pu/CZTgle2JwY3c43bEX3VnGKK2drx

Score

10^/10

Malware Config

Extracted

Family

asyncrat

Version

0.5.7B

Botnet

Default

C2

101.179.85.220:6606

101.179.85.220:7707

101.179.85.220:8808

101.179.85.220:1111

Mutex

AsyncMutex_6SI8OkPnk

Attributes

delay
3
install
false
install_folder
%AppData%

aes.plain

Targets

- Target
  
  769415a5529bd3a6d5e34205b4d52f53_JaffaCakes118
- Size
  
  45KB
- MD5
  
  769415a5529bd3a6d5e34205b4d52f53
- SHA1
  
  8611bb29c54a62be2b80ea88eb0213ebe22b3e23
- SHA256
  
  1f48d54ad69726c01a7ae1e7ceff7ae6093005be1e100a75968476d72d75cf06
- SHA512
  
  728d6507352c49bfc3e2d56db848aef6dfb006b78eb6326eb484e2c9d8c1d9b828c8e0a5de6e8144e0aa0419014fa0d130fb7b3aecb5be6f1fae97e8a2b5405f
- SSDEEP
  
  768:Pu/CZTgoiziWUUM9rmo2qrE/rs4JZOPIc4zjb7gXOiVNtrZ8KK4tBDZrx:Pu/CZTgle2JwY3c43bEX3VnGKK2drx
Score

10^/10

asyncrat default discovery rat
- AsyncRat
  AsyncRAT is designed to remotely monitor and control other computers written in C#.
  rat asyncrat
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

1

T1614

System Language Discovery

1

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2